Configure unprotected URL's

David Whitehurst dlwhitehurst at gmail.com
Tue Jan 13 15:44:49 EST 2009 

Timothy:

You either protect your applications or you don't protect them.  You could
do this:

1. Monitor the application server (is running?)
2. Adopt maybe a way of adding the application version to system properties
(check that)
3. Write a separate un-protected servlet to check database connections

If you protect application virtuals with CAS, then you must authenticate
before the application will provide any response.

HTH


David

On Tue, Jan 13, 2009 at 3:30 PM, Timothy Tagge <tplimited at gmail.com> wrote:

> Hi,
> I have CAS protecting all the URL's in several applications via a
> filter mapping like the following....
>
> <filter>
>                <filter-name>CAS Filter</filter-name>
>
> <filter-class>edu.yale.its.tp.cas.client.filter.CASFilter</filter-class>
>                        <init-param>
>
> <param-name>edu.yale.its.tp.cas.client.filter.loginUrl</param-name>
>                           <param-value>https://loclahost:8443/SSO/login
> </param-value>
>                        </init-param>
>                        <init-param>
>
> <param-name>edu.yale.its.tp.cas.client.filter.validateUrl</param-name>
>                           <param-value>
> https://localhost:8443/SSO/serviceValidate</param-value>
>                    </init-param>
>                        <init-param>
>
>  <param-name>edu.yale.its.tp.cas.client.filter.serviceUrl</param-name>
>                                <param-value>
> https://localhost:8443/ADC/home.htm</param-value>
>                        </init-param>
>                    <init-param>
>
>  <param-name>edu.yale.its.tp.cas.client.filter.wrapRequest</param-name>
>                                <param-value>true</param-value>
>                        </init-param>
>         </filter>
>
>         <filter-mapping>
>                <filter-name>CAS Filter</filter-name>
>                <url-pattern>/*</url-pattern>
>         </filter-mapping>
>
> I have a requirement for certain URLs within the applications to be
> unprotected so that they can be pinged by monitoring processes to
> ensure they are up, the database connection is responding correctly
> and the version of the application can be verified.
>
> Is there a straightforward approach to doing this, or will it involve
> setting up many filter mappings that all map to the same filter?
>
>         <filter-mapping>
>                <filter-name>CAS Filter</filter-name>
>                <url-pattern>/protected1</url-pattern>
>         </filter-mapping>
>
>         <filter-mapping>
>                <filter-name>CAS Filter</filter-name>
>                <url-pattern>/protected2</url-pattern>
>         </filter-mapping>
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas/attachments/20090113/8d43634d/attachment.html

More information about the cas mailing list